Privacy Policy
Last updated June 27, 2026
OpenVisio is built local-first. Your code never leaves your machine for the core product — the graph is built and explored entirely on your device. This policy explains the limited data we do handle when you use our hosted account, billing, and optional features.
1. Who we are
OpenVisio (“OpenVisio”, “we”, “us”) provides a code-graph tool that lets you see any codebase as a navigable map, with a grounded narrator that cites the real code. This policy applies to our websites, the hosted web app, and related services (together, the “Service”).
2. Our local-first principle
The heart of OpenVisio runs on your device. When you point OpenVisio at a repository, the parsing, indexing, and graph-building happen locally. We do not upload, store, or transmit your source code, file contents, file paths, or the questions you ask the narrator to our servers as part of normal graph use.
Some optional features (for example, signing in, subscribing, or any cloud-assisted AI engine you explicitly choose) involve our servers or third parties. Those are described below.
3. Information we collect
Account information
If you create an account, we collect your email address and name, and we store an authentication token so you stay signed in. Passwords are never stored in plain text. If you sign in with Google, we receive basic profile details (name, email, avatar) from Google’s identity token.
Billing information
Paid subscriptions are processed by our payment provider, Stripe. We do not store your full card number. We retain a customer identifier, subscription status, plan, and billing history (date, amount, and status) so we can show your account state and provide receipts.
Usage analytics (optional)
If analytics is enabled and you have not opted out, we collect event names and counts only — for example, that a feature was opened. We never collect your code, file paths, repository names, or the content of your questions. You can opt out at any time in Settings → Privacy or by declining analytics cookies.
Technical information
Like most web services, our servers may process limited technical data (such as IP address and browser type) in request logs for security and reliability. We do not use this to build advertising profiles.
4. How we use information
- To provide and maintain your account and keep you signed in.
- To process subscriptions, payments, and provide billing history.
- To understand, in aggregate, which features are used so we can improve the Service.
- To secure the Service, prevent abuse, and meet legal obligations.
- To respond to your support requests.
5. Legal bases
Where the GDPR applies, we process personal data on the bases of contract (to provide the account and subscription you signed up for), legitimate interests (to secure and improve the Service), consent (for optional analytics and non-essential cookies), and legal obligation (for example, tax and accounting records).
6. Sharing your information
We do not sell your personal data. We share data only with service providers who help us run the Service:
- Stripe — payment processing and subscription management.
- Authentication and email providers — to verify your email and deliver sign-in and account messages.
- Analytics and hosting providers — to operate the Service and, where enabled, store aggregate event counts.
We may also disclose information if required by law or to protect our rights, users, or the public.
7. Data retention
We keep account and billing records for as long as your account is active and as required for legal, tax, and accounting purposes. When you delete your account, we delete or anonymize personal data that we are not required to retain.
8. Your rights
Depending on where you live, you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. To exercise these rights, email us at hello@openvisio.io. You can also withdraw analytics consent at any time in Settings.
9. Security
We use industry-standard measures to protect data in transit and at rest. No method of transmission or storage is completely secure, but the local-first design means most of your sensitive material — your code — stays on your own device and is never sent to us.
10. Children
OpenVisio is not directed to children under 16, and we do not knowingly collect personal data from them.
11. International transfers
Your information may be processed in countries other than your own. Where required, we rely on appropriate safeguards (such as standard contractual clauses) for those transfers.
12. Changes to this policy
We may update this policy from time to time. When we make material changes, we will update the “Last updated” date above and, where appropriate, notify you.
13. Contact
Questions about this policy or your data? Email hello@openvisio.io.
Questions? Reach us at hello@openvisio.io.